Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/oBmDtOMzv9uYHMZKHsP_7TZtJDo.roa
File: oBmDtOMzv9uYHMZKHsP_7TZtJDo.roa (raw, json)
Hash identifier: 1TEsgDEf5icrK07cJlsmMerQGE88qLGKElgw/ofxA2g=
Subject key identifier: A0:19:83:B4:E3:33:BF:DB:98:1C:C6:4A:1E:C3:FF:ED:36:6D:24:3A
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 01953D048A7EE499317FFE5C1FAC94BE0B26
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/oBmDtOMzv9uYHMZKHsP_7TZtJDo.roa
Signing time: Tue 25 Feb 2025 12:11:02 +0000
ROA not before: Tue 25 Feb 2025 12:11:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208555
IP address blocks: 80.75.213.0/24 maxlen: 24
2a09:2b80:14::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:3d:04:8a:7e:e4:99:31:7f:fe:5c:1f:ac:94:be:0b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Feb 25 12:11:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a01983b4e333bfdb981cc64a1ec3ffed366d243a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:22:b6:4d:ce:40:50:f2:f4:2a:a0:ae:89:0e:
cb:21:48:51:e7:9f:7a:61:68:0b:55:cb:4a:49:c6:
ca:b7:10:86:94:cf:6c:63:2b:0e:b2:4a:63:82:6b:
ad:cb:f6:ad:78:83:be:a9:8b:67:77:34:46:a5:bf:
80:f5:0b:0e:97:20:93:87:d3:fd:c5:da:1a:af:9e:
f4:60:d3:5b:54:6a:db:a4:e7:14:7d:8e:4a:44:bb:
f1:ab:4f:52:2e:cf:65:54:98:fd:e4:9d:35:f1:c8:
a7:2e:68:3c:43:6b:21:ce:8c:52:bf:c0:46:22:6b:
5d:7f:65:58:84:ba:84:ab:1b:48:d5:06:b8:4c:5e:
44:36:03:bf:b2:6a:ce:6f:af:4d:de:71:64:b6:27:
79:61:52:99:a2:1b:5f:9f:1a:ed:12:f7:85:32:ec:
7c:88:05:4b:b7:92:8d:fc:3b:47:ca:90:6a:63:d6:
bb:1e:45:d3:3a:1c:d9:66:5e:5f:13:ba:c1:60:68:
9d:2a:86:ac:6d:e3:4e:ec:a2:f0:00:13:1e:ce:b4:
0a:e1:90:e4:0d:94:6d:6c:70:ce:66:d9:f8:90:b0:
c6:b5:cb:bd:fd:1a:48:65:6d:ae:9c:33:4b:5f:85:
d3:f4:94:ea:1d:c1:8b:33:c3:76:73:03:aa:f0:50:
b7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:19:83:B4:E3:33:BF:DB:98:1C:C6:4A:1E:C3:FF:ED:36:6D:24:3A
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/oBmDtOMzv9uYHMZKHsP_7TZtJDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.213.0/24
IPv6:
2a09:2b80:14::/48
Signature Algorithm: sha256WithRSAEncryption
2a:61:2a:d4:cd:fc:af:ad:5a:e1:b6:b7:8e:3b:12:ae:c8:dd:
25:8f:98:fa:10:d4:a1:65:0a:bd:6b:7b:69:cd:3a:c0:b1:17:
bb:cd:29:4f:49:c0:85:d7:31:ff:14:3b:32:54:d1:4d:08:06:
61:4b:3a:fa:99:9a:a5:55:4d:3e:67:f3:6e:ab:35:27:13:b8:
41:e3:44:e1:13:7e:6c:af:68:ee:b5:c2:89:bb:34:70:50:41:
85:a7:b3:e8:34:b9:ca:2c:07:c6:38:33:51:6d:7c:ec:2d:81:
b9:86:92:b3:96:a7:8f:60:62:77:98:4f:05:53:5f:7e:50:18:
1a:40:89:24:7a:ad:f4:a5:c3:5d:26:11:58:b1:d3:9e:23:cd:
37:d6:db:82:8e:6e:60:26:7d:d6:99:8d:e5:52:f1:a4:5b:98:
47:28:77:0a:70:f6:93:f8:97:d1:6a:d6:17:92:c6:a7:79:04:
83:82:e4:94:b1:e8:aa:2f:a5:a5:18:9e:81:46:0f:1c:47:37:
b2:7a:a9:4f:3b:86:52:c8:d4:01:b0:d4:9e:3f:b2:6c:78:54:
63:b5:0d:08:e5:7b:16:2a:fe:34:c7:c1:9c:d9:30:36:68:f2:
76:44:24:57:ba:a9:15:4b:ad:ce:e4:00:5f:9c:2a:fc:9f:7c:
06:80:03:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:57:43 2025 by rpki-client